diff options
| author | erdgeist <erdgeist@erdgeist.org> | 2025-02-05 23:05:01 +0100 |
|---|---|---|
| committer | erdgeist <erdgeist@erdgeist.org> | 2025-02-05 23:05:01 +0100 |
| commit | 38d80f0af731326fcd5ae16c0129a056eff2fe32 (patch) | |
| tree | 58af1fc1180baed7b83c8339a1e7f0c364db7fba /app/views/nodes/edit.html.erb | |
| parent | 8199b48ae5d31b008f10dff173352bd8ba2d8890 (diff) | |
Add warner if theres unescaped entities inside the Title fields
Diffstat (limited to 'app/views/nodes/edit.html.erb')
| -rw-r--r-- | app/views/nodes/edit.html.erb | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/app/views/nodes/edit.html.erb b/app/views/nodes/edit.html.erb index b9260d2..ee11047 100644 --- a/app/views/nodes/edit.html.erb +++ b/app/views/nodes/edit.html.erb | |||
| @@ -90,7 +90,7 @@ | |||
| 90 | </tr> | 90 | </tr> |
| 91 | <tr> | 91 | <tr> |
| 92 | <td class="description">Title</td> | 92 | <td class="description">Title</td> |
| 93 | <td><%= d.text_field :title %></td> | 93 | <td><%= d.text_field :title, :pattern => "(?:[^<>&]|&amp;|&lt;|&gt;)*", :title => "Warning: Unescaped HTML entities detected! Use &lt;, &gt;, &amp; instead of <, >, &." %></td> |
| 94 | </tr> | 94 | </tr> |
| 95 | <tr> | 95 | <tr> |
| 96 | <td class="description">Abstract</td> | 96 | <td class="description">Abstract</td> |
